alex/GoSally
2
0
Fork 0
mirror of https://github.com/akyaiy/GoSally-mvp.git synced 2026-01-03 08:32:24 +00:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: alex:7f2783b39af2becf048e65af64868101301c4a59
Branches Tags
alex:main alex:auth-server alex:dev
alex:v0.0.1-dev
..
compare: alex:84dfdd6b357eb0ca9ebdb638563c95ec0f4dfc29
Branches Tags
alex:main alex:auth-server alex:dev
alex:v0.0.1-dev

4 Commits
7f2783b39a ... 84dfdd6b35

Author SHA1 Message Date
Alexey
84dfdd6b35 add sha356 module 2025-08-06 16:37:28 +03:00
Alexey
e693efe8e7 add iat to jwt 2025-08-06 16:37:13 +03:00
Alexey
c3dcf24e50 improve jwt 2025-08-06 16:36:55 +03:00
Alexey
9e7d99e854 fmt 2025-08-06 16:36:39 +03:00
6 changed files with 45 additions and 2 deletions
Expand all files Collapse all files

5
com/Auth/DeleteUnit.lua
View File

@@ -6,6 +6,7 @@ local log = require("internal.log")
local session = require("internal.session")
local crypt = require("internal.crypt.bcrypt")
local jwt = require("internal.crypt.jwt")
local sha256 = require("internal.crypt.sha256")
local params = session.request.params.get()
local token = session.request.headers.get("authorization")
@@ -50,6 +51,10 @@ if data.session_uuid ~= session.id then
return error_response("Access denied")
end
if data.key ~= sha256.sum(session.request.address .. session.id .. session.request.headers.get("user-agent", "noagent")) then
return error_response("Access denied")
end
if not params then
return error_response("no params provided")
end

6
com/Auth/GetAccess.lua
View File

@@ -6,6 +6,7 @@ local log = require("internal.log")
local session = require("internal.session")
local crypt = require("internal.crypt.bcrypt")
local jwt = require("internal.crypt.jwt")
local sha256 = require("internal.crypt.sha256")
local params = session.request.params.get()
local secret = require("_config").token()
@@ -61,7 +62,10 @@ end
local token = jwt.encode({
secret = secret,
payload = { session_uuid = session.id, admin_user = params.username },
payload = { session_uuid = session.id,
admin_user = params.username,
key = sha256.sum(session.request.address .. session.id .. session.request.headers.get("user-agent", "noagent"))
},
expires_in = 3600
})

5
com/Auth/PutNewUnit.lua
View File

@@ -6,6 +6,7 @@ local log = require("internal.log")
local session = require("internal.session")
local crypt = require("internal.crypt.bcrypt")
local jwt = require("internal.crypt.jwt")
local sha256 = require("internal.crypt.sha256")
local params = session.request.params.get()
local token = session.request.headers.get("authorization")
@@ -50,6 +51,10 @@ if data.session_uuid ~= session.id then
return error_response("Access denied")
end
if data.key ~= sha256.sum(session.request.address .. session.id .. session.request.headers.get("user-agent", "noagent")) then
return error_response("Access denied")
end
if not params then
return error_response("no params provided")
end

2
internal/server/rpc/writers.go
View File

@@ -31,7 +31,7 @@ func write(nid string, w http.ResponseWriter, msg *RPCResponse) error {
} else {
msg.Checksum = generateChecksum(msg.Error)
}
if nid != "" {
msg.ResponsibleNode = nid
}

1
internal/server/sv1/jwt.go
View File

@@ -38,6 +38,7 @@ func jwtEncode(L *lua.LState) int {
payload.ForEach(func(key, value lua.LValue) {
claims[key.String()] = ConvertLuaTypesToGolang(value)
})
claims["iat"] = time.Now().Unix()
claims["exp"] = time.Now().Add(expDuration).Unix()
token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)

28
internal/server/sv1/lua_handler.go
View File

@@ -3,6 +3,8 @@ package sv1
// TODO: make a lua state pool using sync.Pool
import (
"crypto/sha256"
"encoding/hex"
"fmt"
"io"
"log/slog"
@@ -409,11 +411,37 @@ func (h *HandlerV1) handleLUA(sid string, r *http.Request, req *rpc.RPCRequest,
return 1
}
loadCryptbsha256Mod := func(L *lua.LState) int {
llog.Debug("import module crypt.sha256", slog.String("script", path))
sha265mod := L.NewTable()
L.SetField(sha265mod, "sum", L.NewFunction(func(l *lua.LState) int {
data := ConvertLuaTypesToGolang(L.Get(1))
dataStr, ok := data.(string)
if !ok {
L.Push(lua.LNil)
L.Push(lua.LString("error: data must be a string"))
return 2
}
hash := sha256.Sum256([]byte(dataStr))
L.Push(lua.LString(hex.EncodeToString(hash[:])))
L.Push(lua.LNil)
return 2
}))
L.SetField(sha265mod, "__gosally_internal", lua.LString(fmt.Sprint(seed)))
L.Push(sha265mod)
return 1
}
L.PreloadModule("internal.session", loadSessionMod)
L.PreloadModule("internal.log", loadLogMod)
L.PreloadModule("internal.net", loadNetMod)
L.PreloadModule("internal.database.sqlite", loadDBMod(llog, fmt.Sprint(seed)))
L.PreloadModule("internal.crypt.bcrypt", loadCryptbcryptMod)
L.PreloadModule("internal.crypt.sha256", loadCryptbsha256Mod)
L.PreloadModule("internal.crypt.jwt", loadJWTMod(llog, fmt.Sprint(seed)))
llog.Debug("preparing environment")